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earned patent term adjustment. See 37 CFR 1 .704(b). 
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1)IEI Responsive to communication(s) filed on 29 August 2006 . 
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3) Q Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1935 CD. 11, 453 O.G. 213. 

Disposition of Claims 

4) S Claim(s) 1-30 is/are pending in the application. 
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DETAILED ACTION 



1 . In view of the Pre-Appeal Brief filed on 08/29/2006 5 PROSECUTION IS HEREBY 
REOPENED. A new ground of rejection is set forth below. 



two options: 

(1) file a reply under 37 CFR 1.111 (if this Office action is non-final) or a reply under 37 
CFR 1.113 (if this Office action is final); or, 

(2) initiate a new appeal by filing a notice of appeal under 37 CFR 41.31. 

A Supervisory Patent Examiner (SPE) has approved of reopening prosecution by signing 



2. The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that form the 
basis for the rejections under this section made in this Office action: 
A person shall be entitled to a patent unless - 

(e) the invention was described in (1) an application for patent, published under section 122(b), by another filed 
in the United States before the invention by the applicant for patent or (2) a patent granted on an application for 
patent by another filed in the United States before the invention by the applicant for patent, except that an 
international application filed under the treaty defined in section 351(a) shall have the effects for purposes of this 
subsection of an application filed in the United States only if the international application designated the United 
States and was published under Article 21(2) of such treaty in the English language. 



3. Claims 1-30 are rejected under 35 U.S.C. 102(e) as being anticipated by Steele et al. 
USPN 7,016,875 Bl. 



To avoid abandonment of the application, appellant must exercise one of the following 



below: 




Claim Rejections - 35 USC § 102 
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Regarding claim 1, Steele et al. discloses a method for authenticating and authorizing a user of 
an electronic device in communication with a network (fig. 1 and col. 2 lines 43 -col. 3 lines 39), 
comprising: 

receiving a user request from a user of an electronic device in communication with a 
network (fig. 1 1 element 1 102, 1 104 and 1 106; client device, consumer authentication 
information, and host server repository table); 

searching for information relating to said user in a repository of user information, said 
searching based at least partially on said user request and a login identity supplied by said user 
(col. 8 lines 46-col. 9 lines 2 and col. 23 lines 53-col. 24 lines 62); 

retrieving, from the repository of user information, a unique universal user identifier 
representing said user upon locating said information of said user (fig. 1 1 & 4, col. 8 lines 60- 
col. 9 lines 2, and col. 9 lines 53-col. 10 lines 31 and col. 25 lines 24-col. 26 lines 44); 

storing at least said unique universal user identifier in a data packet (col. 8 lines 60-col. 9 
lines 2, and col. 23 lines 10-col. 24 lines 62); 

sending said data packet to a storage device such that said data packet is transmittable to 
electronic devices in communication with said network when said user attempts to access a 
resource within said network (col. 8 lines 67-col. 9 lines 12 and col. 25 lines 46-67); and 

retrieving an authorization datum associated with said user, based at least partially on 
said unique universal user identifier, from said resource (col. 9 lines 13-coL 10 lines 43). 
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Regarding claim 12, Steele et al. discloses a method for accessing a plurality of resources (fig. 8 
elements 802Y and 802Z) having different authorization requirements (abstract), comprising: 

accessing, via an electronic device, a network comprising a plurality of resources (fig. 1); 

providing identifying data to said network (col. 23 lines 10-67); 

retrieving, in response to the identifying data, a unique universal user identifier 
corresponding to said user from a repository of unique universal user identifiers (fig. 1 1 & 4, col. 
8 lines 60-col. 9 lines 2, and col. 9 lines 53-col. 10 lines 31 and col. 25 lines 24-col. 26 lines 44); 

storing said unique universal user identifier on a storage device, said unique universal 
user identifier indicating said user is authenticated (col. 24 lines 2-col. 25 lines 63); and 

accessing one of said plurality of resources, wherein said unique universal user identifier 
is transmitted to said one of said plurality of resources to identify said user such that said user 
can access authorized resources without providing additional identifying information and said 
user is denied access to unauthorized resources (col. 25 lines 5-col. 26 lines 44). 

Regarding claim 18, Steele et al. discloses a method of user authentication and authorization (fig. 
11), comprising: 

accessing a repository containing a plurality of unique universal user identifiers, each of 
said unique universal user identifiers being unique to a user (fig. 1 element 102, and col. 9 lines 
3-col. 10 lines 44); 

retrieving one of said unique universal user identifiers from said repository (fig. 1 1 & 4, 
col. 8 lines 60-col. 9 lines 2, and col. 9 lines 53-col. 10 lines 31 and col. 25 lines 24-col. 26 lines 
44); 
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storing said unique universal user identifier in a data packet readable by an electronic 
device (col. 8 lines 60-col. 9 lines 2, and col. 23 lines 10-col. 24 lines 62); 

transmitting said data packet to a storage device coupled to said electronic device (col. 8 
lines 67-col. 9 lines 12 and col. 25 lines 46-67); and 

making said data packet available to a resource configured within an enterprise network 
to authorize said user (col. 9 lines 13-col. 10 lines 43 and col. 25 lines 24-63). 

Regarding claim 23, Steele et al. discloses a system for user authentication and authorization, 
comprising: 

a repository containing a plurality of unique universal user identifiers, each unique 
universal user identifier being unique to a user (fig. 4, fig. 1 element 102, and col. 9 lines 3-col. 
10 lines 44); 

a first software tool operable to receive user login information, access said repository, 
retrieve a unique universal user identifier relating to said user, and transmit said unique universal 
user identifier to an electronic storage device suitable for storing said unique universal user 
identifier in a data packet for transmission to resources within a network (fig. 1 1, col. 8 lines 60- 
col. 9 lines 2, and col. 9 lines 53-col. 10 lines 31 and col. 25 lines 24-col. 26 lines 44); and 

a second software tool suitable for receiving said data packet and locating authorization 
datum of said user (col. 9 lines 13-col. 10 lines 43 and col. 25 lines 24-63). 

Regarding claim 28, Steele et al. discloses a computer-readable medium encoded with logic 
operable, when executed on a computer processor, to perform the steps comprising: 
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receiving a user request from a user of an electronic device (fig. 1 1 element 1 102, 1 104 
and 1106); 

searching for a user credential corresponding to said user in an authentication database 
(col. 8 lines 46-col. 9 lines 2 and col. 23 lines 53-col. 24 lines 62); 

locating said user credential in said authentication database (col. 8 lines 46-col. 9 lines 2 
and col. 23 lines 53-col. 24 lines 62); 

retrieving a unique universal user identifier representing said user upon locating said user 
credential (fig. 1 1 & 4, col. 8 lines 60-col. 9 lines 2, and col. 9 lines 53-col. 10 lines 31 and col. 
25 lines 24-col. 26 lines 44); 

packaging said unique universal user identifier in a data packet (col. 8 lines 67-col. 9 
lines 12 and col. 25 lines 46-67); and 

transmitting said data packet to said electronic device such that said data packet is 
transmittable to electronic devices in communication with a network when said user attempts to 
access a resource within said network such that said user can access authorized resources without 
providing additional identifying information (col. 15 lines 1-51). 

As per claim 2, Steele et al. discloses the method, wherein receiving a user request comprises 
receiving a login name from said user (col. 8 lines 1-24). 

As per claim 3, Steele et al. discloses the method further comprising: 
registering said user with said network (fig. 2); 

generating said user identifier relating to said user (col. 9 lines 2-col. 10 lines 44); 
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inserting said user identifier in said repository of user information (col. 23 lines 62-col. 
24 lines 62); and 

populating a plurality of repositories containing authorization data with said user 
identifier (col. 25 lines 24-63). 

As per claim 4, Steele et al. discloses the method further comprising receiving a security identity 
from said user (col. 9 lines 2-65). 

As per claim 5, Steele et al. discloses the method further comprising receiving a digital 
certificate from said user (col. 8 lines 1-24). 

As per claim 6, Steele et al. discloses the method further comprising indicating a result to said 
user regarding permitted access to said network (col. 8 lines 60-col. 9 lines 2). 

As per claim 7, Steele et al. discloses the method further comprising requesting a user credential 
of said user (col. 24 lines 38-lines 62). 

As per claim 8, Steele et al. discloses the method, wherein sending said data packet to a storage 
device comprises sending said data packet to a user electronic device supporting said storage 
device (col. 15 lines 1-51). 
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As per claim 9, Steele et al. discloses the method further comprising storing information in 
addition to said unique universal user identifier in said data packet (col. 8 lines 60-col. 9 lines 2, 
and col. 23 lines 10-col. 24 lines 62). 

As per claim 10, Steele et al. discloses the method, wherein sending said data packet to a storage 
device comprises transmitting a cookie to said user electronic device enabling an identity of said 
user to be automatically recognized when said cookie is transmitted to said resource within said 
network (col. 2 lines 42-60). 

As per claim 1 1, Steele et al. discloses the method further comprising encrypting said data packet 
(col. 9 lines 9-12). 

As per claim 13, Steele et al. discloses the method, further comprising providing a key to retrieve 

an authorization datum associated with one of said plurality of unique user identifiers matching 

said unique universal user identifier from one of said plurality of resources (col. 10 lines 19-30). 

« 

As per claim 17, Steele et al. discloses the method, wherein providing identifying data to said 
network comprises providing a digital certificate (col. 10 lines 19-30). 

Regarding claim 14, Steele et al, discloses the method, further comprising: 
registering said user with said network (fig. 2); 

generating said unique universal user identifier for said user (fig. 4 and col. 9 lines 2-col. 
10 lines 44); and 
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inserting said unique universal user identifier in at least one of said plurality 
of user identifiers (col. 23 lines 62-col. 24 lines 62). 

As per claim 15, Steele et al. discloses the method, wherein providing identifying data to said 
network comprises supplying at least one of a login name, a password, and a digital certificate 
(col. 8 lines 1-24). 

As per claim 16, Steele et al. discloses the method, wherein providing identifying data to said 
network comprises providing user credentials (col 8 lines 1-24). 

As per claim 17, Steele et al. discloses the method, wherein providing identifying data to said 
network comprises providing a digital certificate (col. 8 lines 1-24). 



As per claim 19, Steele et al. discloses the method, wherein storing said unique universal user 
identifier comprises packaging said unique universal user identifier in a cookie suitable for 
storage on at least one of a user electronic device and a user proxy electronic device (fig. 4, and 
col. 9 lines 42-col. 10 lines 44). 

As per claim 20, Steele et al. discloses the method further comprising employing a software 
program to access a network reading said storage device (col. 6 lines 1 1-29). 
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As per claim 21, Steele et al. discloses the method further comprising employing a web browser 
employed to access a network reading said storage device (col. 2 lines 43-60 and fig. 9). 

As per claim 22, Steele et al. discloses the method further comprising: 

delivering said data packet to said resource configured within said enterprise 

network (col. 9 lines 20-24); 

extracting said unique universal user identifier from said data packet (col. 25 lines 24-col. 

26 lines 44); 

accessing a repository containing a plurality of user entitlement data (col. 25 lines 24-col. 
26 lines 44); and 

retrieving a user-specific entitlement from said repository containing said 
plurality of user entitlement data using said unique universal user identifier to locate said user- 
specific entitlement (col. 25 lines 24-col. 26 lines 44). 

As per claim 24, Steele et al. discloses the system, wherein said electronic storage device is 
readable by a software program suitable for accessing said network (fig. 10 element 102). 

As per claim 25, Steele et al. discloses the system, wherein said software program is a web 
browser (fig. 9). 

As per claim 26, Steele et al. discloses the system, wherein said electronic storage device is a 
resource configured within said network (fig. 8). 
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As per claim 27, Steele et al. discloses the system, further comprising a repository containing 
authorization data, said repository containing authentication data accessible using said unique 
universal user identifier as a key to retrieve a user-specific entitlement associated with said user 
(fig. 2-4). 

As per claim 29, Steele et al. teaches the computer readable medium, further operable, when 
executed on a computer processor, to perform the steps comprising: 

transmitting said data packet to said resource within said network (col. 9 lines 20-24); 

accessing a repository containing a plurality of user identifiers using said packaged 
unique universal user identifier in a search operation (col. 25 lines 24-col. 26 lines 44 ); and 

retrieving a user-specific entitlement from said repository containing a plurality of unique 
universal user identifiers, said user-specific entitlement associated with said packaged unique 
universal identifier (col. 25 lines 24-col. 26 lines 44). 

As per claim 30, Steele et al. teaches the computer readable medium, further operable, when 
executed on a computer processor, to perform the step of requesting a user credential (fig. 1 
element 108). 



Conclusion 
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4. The prior art made of record and not relied upon is considered pertinent to applicant's 
disclosure. US 6,836,799 Bl : Philyaw et al discloses a user providing information like serial 
number, name, address, job, income level, general family history, demographic information 
and more and generating unique identification/unique ID based on user information provided 
Le. generating a unique universal identifier is very well known in the art. 

5. For more prior art of record see form PTO 892 attached. 

6. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Eleni A. Shiferaw whose telephone number is 571-272-3867. 
The examiner can normally be reached on Mon-Fri 8:00am-5 :00pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Nasser R. Moazzami can be reached on (571) 272-4195. The fax phone number for 
the organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). If you would 
like assistance from a USPTO Customer Service Representative or access to the automated 
information system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 
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